Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: Peter Gutmann <pgut001-kVWAYfnMFF2W8ldZTk/re6VXKuFTiq87 <at> public.gmane.org>
Subject: Re: [liberationtech] Heml.is - "The Beautiful & Secure Messenger"
Newsgroups: gmane.comp.security.cryptography.randombit
Date: Saturday 13th July 2013 06:32:46 UTC (over 3 years ago)
William Yager <[email protected]> writes:

>no cryptographer ever got hurt by being too paranoid, and not trusting
your
>hardware is a great place to start.

And while you're lying awake at night worrying whether the Men in Black
have
backdoored the CPU in your laptop, you're missing the fact that the
software
that's using the random numbers has 36 different buffer overflows, of which
27
are remote-exploitable, and the crypto uses an RSA exponent of 1 and
AES-CTR
with a fixed IV.

Peter.
 
CD: 3ms